dgiessen
asked on
Tracking a user
Is there a way in unix to track what a user is doing while logged in? Is there an account monitoriing option to flip on for a user's account, or is there a unix application that can monitor online activity (as in tracking what commands a user is executing)?
ttysnoop is a program that allows you (once you configure things correctly) to view a user's text terminal, just as if you were looking at their screen.
lsof (or other variants depending on the OS) is a program that allows you to view the files that are currently open, and you can specify certain users to look at. It might take a little detective work, but you can still figure out what the user is doing.
lsof (or other variants depending on the OS) is a program that allows you to view the files that are currently open, and you can specify certain users to look at. It might take a little detective work, but you can still figure out what the user is doing.
You could also use script ( see script man page) It just copies everything they see/type to a log file, but be warned the logs can get huge.
Regards Mike
Regards Mike
most UNIX have the last and lastcomm command
lastcomm requires accounting being configured
lastcomm requires accounting being configured
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
within the "top" command you can specify a specific user.
of try the "w" command.
of try the "w" command.
Hi.
Here's a small program that I found useful from time to time.
http://filewatcher.org/sec/ttysnoop/int_1week.html
Lots of debian there but I know for a fact that it works on other platforms as well.
Watch the user in realtime or just redirect stdin to a file of your choice.
Here's a small program that I found useful from time to time.
http://filewatcher.org/sec/ttysnoop/int_1week.html
Lots of debian there but I know for a fact that it works on other platforms as well.
Watch the user in realtime or just redirect stdin to a file of your choice.
Hi.
Here's a small program that I found useful from time to time.
http://filewatcher.org/sec/ttysnoop/int_1week.html
Lots of debian there but I know for a fact that it works on other platforms as well.
Watch the user in realtime or just redirect stdin to a file of your choice.
Here's a small program that I found useful from time to time.
http://filewatcher.org/sec/ttysnoop/int_1week.html
Lots of debian there but I know for a fact that it works on other platforms as well.
Watch the user in realtime or just redirect stdin to a file of your choice.
No comment has been added lately, so it's time to clean up this TA.
I will leave a recommendation for this question in the Cleanup topic area as follows:
- Answered by interiot
Please leave any comments here within the next 7 days
PLEASE DO NOT ACCEPT THIS COMMENT AS AN ANSWER !
tfewster (I don't work here, I'm just an Expert :-)
I will leave a recommendation for this question in the Cleanup topic area as follows:
- Answered by interiot
Please leave any comments here within the next 7 days
PLEASE DO NOT ACCEPT THIS COMMENT AS AN ANSWER !
tfewster (I don't work here, I'm just an Expert :-)
Finalized as proposed
modulo
Community Support Moderator
Experts Exchange
modulo
Community Support Moderator
Experts Exchange
You can also setup system accounting using sac.
What OS are you using and what shell is your user using?
If they do not need much access you can give them a menu system of the commands they need or else setup a restricted shell for them.
Regards, Nisus
http://www.omnimodo.com